CN100468435C - Server - Google Patents

Server Download PDF

Info

Publication number
CN100468435C
CN100468435C CN200580031484.5A CN200580031484A CN100468435C CN 100468435 C CN100468435 C CN 100468435C CN 200580031484 A CN200580031484 A CN 200580031484A CN 100468435 C CN100468435 C CN 100468435C
Authority
CN
China
Prior art keywords
information
communication terminal
service
server
appointed
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN200580031484.5A
Other languages
Chinese (zh)
Other versions
CN101023432A (en
Inventor
泽田久德
江口步
新井绚子
市川刚
中村友则
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
NTT Docomo Inc
Original Assignee
NTT Docomo Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by NTT Docomo Inc filed Critical NTT Docomo Inc
Publication of CN101023432A publication Critical patent/CN101023432A/en
Application granted granted Critical
Publication of CN100468435C publication Critical patent/CN100468435C/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3226Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using a predetermined code, e.g. password, passphrase or PIN
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/56Financial cryptography, e.g. electronic payment or e-cash
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W60/00Affiliation to network, e.g. registration; Terminating affiliation with the network, e.g. de-registration
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W8/00Network data management
    • H04W8/26Network addressing or numbering for mobility support
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W88/00Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
    • H04W88/14Backbone network devices

Abstract

This service processing server 10 is a server for providing a communication processing service with an information providing server 35, to a cell phone 20 belonging to a network N1 capable of identifying subordinate cell phones 20, and comprises an application receiving part 101 for receiving first communication terminal-specific information to specify a specific cell phone 20, and service-specific information in association with each other; a specific information generating part 103 for generating second communication terminal-specific information; an approval requesting part 104 for transmitting approval request information containing the service-specific information and the second communication terminal-specific information, to the information providing server 35; a result receiving part 105 for receiving approval result information returned; and a registering part 106 for performing a registration process for providing the communication processing service to the specific cell phone 20 in accordance with reception of the approval result information.

Description

Server
Technical field
The present invention relates to provide the communication terminal of the network that belongs to each body that to discern subordinate's communication terminal the server of communication process service.
Background technology
In the past, in mobile radio communication and the Internet, third party's (service for passerby) replaced I (wanting to provide the operator of service) that provide (for example, the following patent documentation 1 of reference) that ticket issuing and useful information to the user provide the service of grade is provided.
Patent documentation 1: 2002-No. 207919 communiques of TOHKEMY
In above-mentioned identical framed structure, there is service to be provided for making the structure of linking functions of the website of the above-mentioned operator of user capture for passerby.And when linking functions was provided, service provided service to the linking functions of the website of a plurality of operators, user can only select to accept oneself to want the service of the linking functions of the website of visiting from these a plurality of websites for passerby.
During this situation, need before being provided, service carry out the service registration of service below the correspondence usually.At first, the user registers the intrinsic code of this user to service for passerby in advance, and when having the service of wanting to accept, the user informs that with this code operator and application to serving provide service.The operator of the application information of being told, this application information notification service that will comprise the code that the user is intrinsic is for passerby.The service of the application information of being told utilizes the code that comprises in this information to carry out authentification of user for passerby, this user is carried out utilizing the service registration of this service.By this service registration, the user can utilize service.Using the intrinsic code of user herein, when enrolled for service is in order to prevent that operator from registering the user without authorization.And the utilization to operator's application service is not to be convenient to operator can judge whether to provide service to this user to the user for passerby's application to service.
As mentioned above, when operator's application provides service, the user need inform operator by the code that the user is intrinsic.But the user informs that with code operator is more miscellaneous, and the user does not have storage code sometimes, and under this situation, service can not carry out utilizing the registration of this service to this user for passerby.
Summary of the invention
The objective of the invention is to, a kind of server that can carry out service registration more simply is provided.
Server of the present invention is the 1st server that can provide the communication terminal of the network that belongs to each body that can discern subordinate's communication terminal at the communication process service of the 2nd server, this server has: the application receiving element, it receives the 1st communication terminal appointed information that is used to specify the designated communication terminal of obtaining the service appointed information and the service appointed information that this obtains explicitly, and described service appointed information is used to specify the communication process service; The appointed information generation unit, it is according to the 1st communication terminal appointed information of this reception, generates the 2nd communication terminal appointed information of the communication terminal that is used to make the above-mentioned appointment of the 2nd server identification; Request approval unit, its generation comprise the request approval information of service appointed information and the 2nd communication terminal appointed information, and send to the 2nd server; Receiving element as a result, it receives to the transmission that should ask to approve information and from the 2nd server approval object information that reply, that comprise above-mentioned service appointed information and above-mentioned the 2nd communication terminal appointed information; And registration unit, it is to approving the reception of object information, the communication terminal that is judged as the above-mentioned appointment of approval is accepted above-mentioned communication process service, is used for providing to above-mentioned designated communication terminal the registration process of above-mentioned communication process service.Described request approval information comprises: the information that comprises described service appointed information and described the 2nd communication terminal appointed information has at least been carried out the enciphered message of encrypting, and the plain code information of the state of described service appointed information and described the 2nd communication terminal appointed information not being encrypted, described approval object information also comprises described enciphered message and described plain code information, described registration unit is encrypted the plain code information that comprises in the described approval object information, relatively result after this encryption and the enciphered message that received, judge whether described request approval information and described approval object information be corresponding, approve that in described request information and described approval object information are to carrying out described registration process at once.
In (the 1st) of the present invention server, obtain the appointed information of the communication terminal that belongs to above-mentioned network, use this communication terminal appointed information to carry out service registration at communication terminal.Therefore, the user does not need to send the information such as code that are used for the authentication communication terminal, can carry out service registration simply.
According to the present invention, the user does not need to send the information such as code that are used for the authentication communication terminal, can carry out service registration simply.
Description of drawings
Fig. 1 is the figure of the structure of the service processing server that relates to of expression embodiment.
Fig. 2 is illustrated in the sequence chart that the processing of carrying out in the system that comprises the service processing server is provided in the embodiment.
Fig. 3 is the example that the pocket telephone request from Fig. 1 is shown in the picture on the display device of pocket telephone when beginning service registration.
Fig. 4 is the pocket telephone from Fig. 1 is shown in the picture on the display device of pocket telephone when the service processing server sends authentication information a example.
Fig. 5 is the example that the service processing server from Fig. 1 has been accepted the picture on the display device that is shown in pocket telephone when registering to the pocket telephone notice.
Symbol description:
10: the service processing server; 101: the application acceptance division; 102: authentication processing portion; 103: the appointed information generating unit; 104: request approval portion; 105: acceptance division as a result; 106: register; 107: service processing portion; 210: the user profile storage part; 20: pocket telephone; 35,36: information-providing server; N1: network (mobile communicating net); N2: network.
Embodiment
Opinion of the present invention is by understanding easily with reference to only considering following specific descriptions for the shown accompanying drawing of example.Below, with reference to the description of drawings embodiments of the present invention.Under possible situation, same section is given same-sign and omitted repeat specification.
Fig. 1 represents the service processing server 10 (the 1st server) that present embodiment relates to and comprises service processing server 10 and the structure of the service provider system that constitutes.Service processing server 10 can carry out the transmission reception of information by network N 1 and pocket telephone 20 (communication terminal).And service processing server 10 can carry out the transmission reception of information by network N 2 and information-providing server 35,36 (the 2nd server).
Service processing server 10 is to provide the server of serving at the communication process of information-providing server 35,36 to the pocket telephone 20 that carries out service registration.So-called communication process service at information-providing server 35,36, the providing etc. of the linking functions that for example refers to be used to make pocket telephone 20 visit informations that server 35,36 is provided.Service processing server 10 is preferred specifically to utilize the signal conditioning package that is made of CPU, storer etc. to realize.Each function about service processing server 10 will be narrated in the back.
Information-providing server the 35, the 36th, communication process in service processing server 10 service destination is to be visited by pocket telephone 20 and carry out the server that various information provide by network N 1.And information-providing server 35,36 is carried out the approval at the service registration of pocket telephone 20 undertaken by service processing server 10.Information-providing server 35,36 is preferred specifically utilizes the signal conditioning package that is made of CPU, storer etc. to realize.Herein, above-mentioned information for example provides specifically by retail shop, rental store, bank etc. so that the various operators of ordinary customer as the operator of object are carried out.Therefore, information-providing server shown in Figure 1 35,36 refers to be used for the server that provides by the different operators information of carrying out, also can have a plurality of servers more than 3 in addition.And, as mentioned above, owing to can have the information-providing server 35,36 of a plurality of operators, so the management of preferred service processing server 10 is carried out for passerby by above-mentioned service.Below, illustrate only be the structure and the action thereof of the service provider system of object with information-providing server 35.
Pocket telephone 20 is from the terminal of service processing server 10 acceptance at the communication process service of information-providing server 35.And pocket telephone 20 is by the communication process service at this information-providing server 35, and receiving information from information-providing server 35 provides.Pocket telephone 20 has the mobile communicating function, has the telephone number that is used at each body of mobile communicating net identification.In addition, preferred pocket telephone 20 has the web access function.In addition, though there are a plurality of pocket telephones 20 usually, for the purpose of simplifying the description, be that example describes with 1.
Network N 1 is the connecting object of service processing server 10, pocket telephone 20 and information-providing server 35, specifically mobile communicating net preferably.Herein, service processing server 10 is under the actual management of network N 1, can receive the telephone number (the 1st communication terminal identifying information) of pocket telephone 20 body separately that is used for recognition network N1 subordinate.Network N 2 is connecting objects of service processing server 10 and information-providing server 35, specifically the Internet or based on the circuit of industrial siding preferably.
Below, each function of service processing server 10 is described.As shown in Figure 1, service processing server 10 comprises application acceptance division 101 (application receiving element), authentication processing portion 102 (authentication processing unit), appointed information generating unit 103 (appointed information generation unit), request approval portion 104 (request approval unit), acceptance division 105 (receiving element as a result), register 106 (registration unit), service processing portion 107 and user profile storage part 210 as a result.
Application acceptance division 101 is to receive the telephone number of pocket telephone 20 and the part of service appointed information explicitly.So-called service appointed information refers to be used to specify the information of the communication process service that is provided by service processing server 10, the preferred specifically ID that is made of tens bit digital that uses.The preferred service appointed information that receives as the information that sends from pocket telephone 20, receives the telephone number of pocket telephone 20, as the additional information of information that should send by 1 pair of network N.The information that is received is sent to appointed information generating unit 103.And the preferred service appointed information sends after by the URL of the visit destination of additional representation information-providing server 35 information such as (Uniform ResourceLocator).
The authentication information that is stored in the corresponding pocket telephone 20 in the user profile storage part 210 is read by authentication processing portion 102, and carries out the part of the authentification of user of pocket telephone 20 according to the authentication information that sends from pocket telephone 20.The password that authentication information preferably is made of 4 bit digital specifically.And preferred authentication information is as being used for pocket telephone 20 to be connected to the information that user the password on the network N 1, pocket telephone 20 can not forget usually.
Appointed information generating unit 103 is the parts that generate application ID (the 2nd communication terminal appointed information) according to the telephone number that is received.Application ID is used to make the information of information-providing server 35 identifications as the pocket telephone 20 of service registration object.Application ID preferably uses the ID that is made of tens bit digital specifically.And, preferably in service processing server 10, preserve telephone number and the corresponding informance of applying for ID.Generating application ID herein, is in order to prevent that operator from learning user's telephone number.The application ID that is generated and be sent to request approval portion 104 by the service appointed information that application acceptance division 101 receives.And application ID and the corresponding telephone number of service appointed information are stored in the user profile storage part 210.Perhaps, except will applying for that the corresponding telephone number of ID is preserved, also can in service processing server 10, store the logic that to change telephone number from application ID uniquely.In addition, the application ID that generates according to a telephone number is not limited to one, also can be a plurality of.And in appointed information generating unit 103, for example the telephone number of the pocket telephone 20 that also can corresponding in advance register generates application ID in advance, uses this application ID when registration.
Request approval portion 104 generates the request approval information that comprises service appointed information and application ID, and sends to the part of information-providing server 35.And preferred request approval portion 104 will comprise the information encryption of service appointed information and application ID, and this enciphered message further is contained in the request approval information.This enciphered message is used to make register 106 to carry out the contrast of register information more reliably, and the transmission of promptly carrying out information safely receives.The generation of enciphered message preferably is stored in hash function (one-way function) in the request approval portion 104 specifically in advance, and the input of this hash function is made as the information that comprises above-mentioned service appointed information and application ID, by the output valve of this moment is carried out as enciphered message.
And preferred enciphered message comprises nonpublic information beyond take off mourning clothes affair appointed information and the application ID, promptly do not send to the information of information-providing server 35 and be carried out encryption.As this information, for example preferred intrinsic information of the pocket telephone that is kept in the user profile storage part 210 20 (for example the date temporal information of in advance registering of pocket telephone 20 etc.) of using.Herein, the purpose that comprises the information that does not send to information-providing server 35 is that by comprising information-providing server 35 unknowable information in the generation that makes enciphered message the transmission that can carry out information more safely receives.
Herein, according to top described generation enciphered message the time, if the service of pocket telephone 20 and service registration is definite, then enciphered message is unique information.In addition, for the transmission that can carry out information more safely receives, preferred enciphered message comprises at the application unduplicated information of ID when each encryption and is carried out encryption, thereby makes enciphered message not become unique information.As this unduplicated information, specifically, the temporal information when preferred request for utilization acceptance division 101 receives information.Like this, encrypt by comprising unduplicated information, enciphered message is not unique as mentioned above, and the transmission that can carry out information more safely receives.And, comprise temporal information by making enciphered message, can be according to sending to information-providing server 35 after the request approval information to the time that receives the approval object information, carry out the judgement that could register etc.
Acceptance division 105 is the parts of sending the approval object information that reception replys from information-providing server 35 according to request approval information as a result.Comprise service appointed information and application ID in the approval object information.And, preferably also comprise above-mentioned enciphered message.If comprise enciphered message in the approval object information, the legitimacy of the service appointed information that can be replied according to enciphered message checking etc. (data are not distorted etc. by improper in information-providing server 35) then.The information that is received is sent to register 106.
Register 106 is the receptions according to the approval object information, be judged as approval and carried out the communication process service that the pocket telephone 20 of application is accepted corresponding application, and this pocket telephone 20 is used to provide the part of the registration process of this communication process service.When registration, preferably carry out contrast based on the approval object information of above-mentioned enciphered message.
Service processing portion 107 is when pocket telephone 20 requests provide the communication process service, the pocket telephone 20 that carries out service registration is provided the part of communication process service.Whether pocket telephone 20 has carried out the judgement of service registration, by carrying out with reference to the information that is stored in the service registration in the user profile storage part 210.And providing specifically by sending link information at the information-providing server corresponding with the communication process service of communication process service waits and carries out.
User profile storage part 210 is parts that stores service is registered the user profile of the pocket telephone 20 that relates to.Specifically, be stored in the authentication processing portion 102 authentication information of the corresponding pocket telephone 20 that uses and the service registration information by register 106 registrations etc.
Below, the sequence chart of use Fig. 2 illustrates the processing of carrying out by the service provider system of present embodiment.This processing is carried out when the user of pocket telephone 20 carries out service registration, and this service registration is used to accept the communication process service at information-providing server 35 that provided by service processing server 10.
At first, pocket telephone 20 solicited messages provide server 35 to send service appointed information (S01).The preferred specifically pocket telephone 20 of this request is undertaken by the specified URL of web access information-providing server 35.This visit is obtained request corresponding to the service appointed information at information-providing server 35.
Received the service appointed information and obtained information requested server 35 is provided, sent service appointed information (S02) to pocket telephone 20.Pocket telephone 20 receives this information.
Then, pocket telephone 20 sends authentication information (S03) to service processing server 10.This transmission is specifically according to following described carrying out.At first, be sent in information and the picture data that S02 sends simultaneously from information-providing server 35, pocket telephone 20 makes display device show picture shown in Figure 3 according to this picture data.Then, by user's operation, in picture shown in Figure 3, press " continuation " button.Preferred this button possesses the linking functions that is used for access services processing server 10, according to this linking functions access services processing server 10, by in the picture shown in Figure 4 on the display device that is shown in pocket telephone 20, undertaken thus by the input and the pressing down of " determining " button of authentication information (password).
Then, in service processing server 10, authentication processing portion 102 carries out the authentification of user (S04) of pocket telephone 20 according to the Crypted password of this transmission.Later processing is only carried out under the situation that authentification of user normally passes through.
Then, the service appointed information that will obtain in S02 of pocket telephone 20 sends to service processing server 10 (S05).Specifically, after preferably pressing " determining " button and send authentication information in S03, the service appointed information that then will obtain in S02 sends to service processing server 10.In the service processing server 10 that has been sent out the service appointed information, application acceptance division 101 receives this information.At this moment, application acceptance division 101 receives the information of the telephone number that is attached to the pocket telephone 20 on this information in the lump by network N 1.The information that is received is sent to appointed information generating unit 103.According to this information, service processing server 10 obtains the information which pocket telephone 20 carries out service registration to which service.
Then, appointed information generating unit 103 is according to the telephone number of pocket telephone 20, and generation is used to make information-providing server 35 identifications to carry out the application ID (S06) of the pocket telephone 20 of service registration application.Application ID that is generated and service appointed information are sent to request approval portion 104, and are stored in the user profile storage part 210.Perhaps, as mentioned above, except that according to the top described storage application ID, also can with the logical storage that can change telephone number uniquely from application ID service processing server 10, can use this logic from the telephone number of application ID with reference to correspondence.
Then, request approval portion 104 generates enciphered message (S07).Enciphered message preferably comprises the service appointed information as mentioned above, application ID, pocket telephone 20 intrinsic information and application acceptance divisions 101 receive the temporal information (accepting the date temporal information) of information and are carried out encryption.The enciphered message of Sheng Chenging is if the mode of using above-mentioned hash function to generate herein, then owing to can from original information, generate identical enciphered message, so need in service processing server 10, not preserve, can not take memory storages such as hard disk owing to the preservation of enciphered message.
Then, request approval portion 104 sends to information-providing server 35 and comprises application ID, serves appointed information, accepts the request approval information (S08) of date temporal information and enciphered message.Herein, the appointment of the transmission destination during transmission (information-providing server 35) is preferably carried out according to the information of the additional URL that gives above-mentioned service appointed information etc.Perhaps, the appointment of above-mentioned transmission destination also can be preserved in advance in service processing server 10 and be made the service appointed information and specify the information information corresponding that sends the destination, carries out according to this information.The information-providing server 35 that has been sent out information receives this information.According to this information, information-providing server 35 can be specified the service and the pocket telephone 20 of the object that becomes service registration.After specifying pocket telephone 20 by information-providing server 35, accept response from information-providing server 35, request approval portion 104 sends expression to pocket telephone 20 and has accepted the picture (S09, Fig. 5) of service registration.
Then, information-providing server 35 sends the application ID that comprises above-mentioned reception, serves appointed information, accepts the approval object information (S10) of date temporal information and enciphered message to service processing server 10.Send by this, approval is to the service registration of this pocket telephone 20.In being sent out the service processing server 10 of information, acceptance division 105 receives this approval object information as a result.The information that is received is sent to register 106.In addition, for the information that sends to service processing server 10 by information-providing server 35,, also can send the ID that pocket telephone 20 is given alone for managing portable formula telephone set 20 in information-providing server 35.And the transmission of this approval object information also can provide the judgement of the operator of server 35 to carry out according to management information.
Then, register 106 with whether identical by the information that comprises in the approval object information that acceptance division 105 receives as a result, contrasts (S11) by each more corresponding information about the information that comprises in the request approval information that sends by request approval portion 104.Whether identical information is application ID and service appointed information in contrast.And, preferably in register 106, also used the contrast of enciphered message.Even in information-providing server 35, distorted service appointed information or application ID,, distorted so also can detect owing to utilize enciphered message to carry out error-detecting.Based on the contrast of enciphered message, by relatively being undertaken by enciphered message that comprises in the approval object information that acceptance division 105 receives as a result and the enciphered message that generates by request approval portion 104.The hash function of stating in the use generates under the situation of enciphered message, also can in register 106, generate identical enciphered message once more, and the enciphered message of relatively this generation and the enciphered message by comprising in the approval object information that acceptance division 105 receives as a result, compare thus.Being judged as by register 106 between any information when all inequality, stop later processing.In addition, acceptance division 105 also can compare accepting time on date and the current date time that date and time information is represented of being received as a result, for example from accepting the time on date through more than 5 days the time, stops to handle.
Be judged as between each information when identical, 106 pairs of pocket telephones of having applied for of register 20 carry out and utilize the corresponding service registration (S12) of service appointed information service specified.Service registration preferably waits by canned data in user profile storage part 210 carries out.And also canned data provides the server ID that 35 pairs of pocket telephones 20 are given alone in the lump.In service processing server 10, the pocket telephone 20 that 107 pairs in service processing portion carries out service registration provides service.
As mentioned above, the service processing server 10 according to present embodiment relates to can carry out service registration simply.That is, do not need to send code informations etc. and can carry out service registration, so the user of pocket telephone 20 and management information provide the both sides of operator of server 35 not need to know code information etc. from pocket telephone 20.And, in the present embodiment, obtain the communication terminal appointed information (telephone number) that is used to specify pocket telephone 20 from network N 1, become other-end so can prevent pocket telephone 20.
And, in order to carry out service registration, the information of between service processing server 10 and information-providing server 35, transmitting, in service processing server 10 (register 106), contrasted, so can prevent from other users' of not having the service registration meaning pocket telephone 20 is carried out service registration.And, as present embodiment,, then can carry out safer service registration if use enciphered message contrast approval object information.
And, as present embodiment,, and use telephone number as the communication terminal appointed information if network N 1 is the mobile communicating net, then can carry out service registration more reliably.
And, as present embodiment,, then do not provide telephone number can carry out service registration to information-providing server 35 if generate the information different as application ID with telephone number.Be that telephone number etc. is not suitable for offering under the third party's the situation particularly, preferably take this mode in the 1st communication terminal appointed information.
And, as present embodiment,, then can carry out safer service registration if carry out authentification of user according to the authentication information that sends from pocket telephone 20.For example, when pocket telephone 20 meets with stolen the grade,,,, can not register so can not accept authentication because enciphered message has only the user of pocket telephone 20 to know even the third party wants to carry out service registration.In addition, the authentication information of Shi Yonging can use pocket telephone 20 to be used to be connected to Crypted password on the network N 1 etc. herein, does not carry out intrinsic code of user that service registration uses etc. so do not need to use.
In addition, in the present embodiment, in the information-providing server 35 of the approval of carrying out service registration, do not obtain user-dependent information with pocket telephone 20.For example, in management information when the operator of server 35 is provided for example is bank etc., according to the content of service, sometimes according to wishing to carry out the approval of service registration with user-dependent information.As with user-dependent information, for example has age, sex.
In this case, it is (not shown from the pocket telephone 20 user profile acceptance divisions with user-dependent information pocket telephone 20 that send also can to make information-providing server 35 also possess reception, the user profile receiving element), carried out service registration according to what receive with user-dependent information.For example, can be only allow service registration during for the women the user who carries out service registration.
And preferred network is the mobile communicating net, and the 1st communication terminal appointed information is to specify the telephone number of communication terminal in the mobile communicating net.According to this structure, can use telephone number as the information of the communication terminal that is used for recognition network subordinate body separately, can carry out service registration more reliably.
And preferred the 2nd communication terminal appointed information is and the different information of the 1st communication terminal appointed information.When being not suitable for that the third party disclosed the 1st communication terminal appointed information etc., according to this structure, can not carry out service registration to the 2nd server notification the 1st communication terminal appointed information.
And, preferred request approval information comprises: the information that comprises service appointed information and the 2nd communication terminal appointed information has at least been carried out the enciphered message of encrypting, and the plain code information of the state of service appointed information and the 2nd communication terminal appointed information not being encrypted, the approval object information also comprises described enciphered message and described plain code information, registration unit will be approved the plain code information encryption that comprises in the object information, relatively result after this encryption and the enciphered message that received, whether judgement request approval information and approval object information be corresponding, asking approval information and approval object information to carrying out registration process at once.According to this structure, the information that can prevent is distorted etc. in the 2nd server, can carry out safer service registration.
And the nonpublic information that preferred enciphered message comprises beyond service appointed information and the 2nd communication terminal appointed information is also encrypted, does not comprise nonpublic information in the plain code information.According to this structure, encrypted information comprises the information that does not send to the 2nd server, and the secret of cipher mode improves, so can carry out safer service registration.
And preferred enciphered message comprises the unduplicated information of relative the 2nd communication terminal appointed information and encrypted at each encryption.According to this structure, relative the 2nd communication terminal appointed information of the enciphered message that is generated does not also repeat, so can carry out safer service registration.
And, the information memory cell that preferably has the authentication information of storing corresponding communication terminal in advance, has the authentication processing unit, this authentication ' unit is according to the authentication information that sends from described designated communication terminal, with reference to the authentication information that is stored in the described information memory cell, carry out the authentification of user of described designated communication terminal.According to this structure, can carry out authentification of user, so can carry out safer service registration.
Utilizability on the industry
The present invention will provide the server conduct of communication process service to communication terminal on communication network Use, the user does not need to send the information such as code for the authentication communication terminal, can be simple Ground carries out service registration.

Claims (10)

1. server, the 1st server can provide the communication process service at the 2nd server to the communication terminal of the network that belongs to each body that can discern subordinate's communication terminal, and the 1st server has:
The application receiving element, it receives the 1st communication terminal appointed information that is used to specify the designated communication terminal of obtaining the service appointed information and the service appointed information that this obtains explicitly, and described service appointed information is used to specify described communication process service;
The appointed information generation unit, it is according to the 1st communication terminal appointed information of this reception, generates the 2nd communication terminal appointed information of the communication terminal that is used to make the described appointment of described the 2nd server identification;
Request approval unit, its generation comprise the request approval information of described service appointed information and described the 2nd communication terminal appointed information, and send to described the 2nd server;
Receiving element as a result, its receive this request approval information of response transmission and from described the 2nd server approval object information answer, that comprise described service appointed information and described the 2nd communication terminal appointed information; And
Registration unit, the reception that it responds this approval object information is judged as the described designated communication terminal of approval and accepts described communication process service, is used for providing to described designated communication terminal the registration process of described communication process service,
Described request approval information comprises: the information that comprises described service appointed information and described the 2nd communication terminal appointed information has at least been carried out the enciphered message of encrypting, and the plain code information of the state of described service appointed information and described the 2nd communication terminal appointed information not being encrypted
Described approval object information also comprises described enciphered message and described plain code information,
Described registration unit is encrypted the plain code information that comprises in the described approval object information, relatively result after this encryption and the enciphered message that received, judge whether described request approval information and described approval object information be corresponding, approve that in described request information and described approval object information are to carrying out described registration process at once.
2. the 1st server according to claim 1, described network are the mobile communicating nets,
Described the 1st communication terminal appointed information is the telephone number of described designated communication terminal in described mobile communicating net.
3. the 1st server according to claim 2, described the 2nd communication terminal appointed information are and the different information of described the 1st communication terminal appointed information.
4. according to each described the 1st server in the claim 1~3, described enciphered message comprises that nonpublic information beyond described service appointed information and described the 2nd communication terminal appointed information does not promptly send to the information of described the 2nd server and encrypted, does not comprise described nonpublic information in the described plain code information.
5. according to each described the 1st server in the claim 1~3, described enciphered message is at each encryption, comprises the information that repeats with described the 2nd communication terminal appointed information and not encrypted, thereby makes described enciphered message not become unique information.
6. the 1st server according to claim 4, described enciphered message be at each encryption, comprises the information that repeats with described the 2nd communication terminal appointed information and not encrypted, thereby make described enciphered message not become unique information.
7. according to each described the 1st server in the claim 1~3, the 1st server has the information memory cell of the authentication information of storing corresponding described communication terminal in advance, and
Have the authentication processing unit, this authentication processing unit with reference to the authentication information that is stored in the described information memory cell, carries out the authentification of user of described designated communication terminal according to the authentication information that sends from described designated communication terminal.
8. the 1st server according to claim 4, the 1st server has the information memory cell of the authentication information of storing corresponding described communication terminal in advance, and
Have the authentication processing unit, this authentication processing unit with reference to the authentication information that is stored in the described information memory cell, carries out the authentification of user of described designated communication terminal according to the authentication information that sends from described designated communication terminal.
9. the 1st server according to claim 5, the 1st server has the information memory cell of the authentication information of storing corresponding described communication terminal in advance, and
Have the authentication processing unit, this authentication processing unit with reference to the authentication information that is stored in the described information memory cell, carries out the authentification of user of described designated communication terminal according to the authentication information that sends from described designated communication terminal.
10. the 1st server according to claim 6, the 1st server has the information memory cell of the authentication information of storing corresponding described communication terminal in advance, and
Have the authentication processing unit, this authentication processing unit with reference to the authentication information that is stored in the described information memory cell, carries out the authentification of user of described designated communication terminal according to the authentication information that sends from described designated communication terminal.
CN200580031484.5A 2004-10-07 2005-10-05 Server Expired - Fee Related CN100468435C (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP295322/2004 2004-10-07
JP2004295322 2004-10-07

Publications (2)

Publication Number Publication Date
CN101023432A CN101023432A (en) 2007-08-22
CN100468435C true CN100468435C (en) 2009-03-11

Family

ID=36142730

Family Applications (1)

Application Number Title Priority Date Filing Date
CN200580031484.5A Expired - Fee Related CN100468435C (en) 2004-10-07 2005-10-05 Server

Country Status (9)

Country Link
US (1) US7844267B2 (en)
EP (1) EP1811716B1 (en)
JP (1) JP4486648B2 (en)
CN (1) CN100468435C (en)
AU (1) AU2005290501B2 (en)
ES (1) ES2392643T3 (en)
NZ (1) NZ554363A (en)
TW (1) TW200622677A (en)
WO (1) WO2006038658A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10382452B1 (en) 2007-06-12 2019-08-13 Icontrol Networks, Inc. Communication protocols in integrated systems
KR101315670B1 (en) * 2011-05-25 2013-10-08 주식회사 슈프리마 Method for smart phone registration when accessing security authentication device and method for access authentication of registered smart phone

Family Cites Families (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH0563696A (en) 1991-09-02 1993-03-12 Nippon Telegr & Teleph Corp <Ntt> Intermediate communication system
JPH11212462A (en) * 1998-01-27 1999-08-06 Canon Inc Electronic watermark system, electronic information delivery system, picture filing device, and storage medium
JP4372936B2 (en) 2000-01-25 2009-11-25 エヌ・ティ・ティ・コミュニケーションズ株式会社 Proxy management method and agent device
JP3497799B2 (en) * 2000-06-07 2004-02-16 日本電信電話株式会社 User authentication method
US6836765B1 (en) * 2000-08-30 2004-12-28 Lester Sussman System and method for secure and address verifiable electronic commerce transactions
CN1483263A (en) 2000-10-26 2004-03-17 ���ĺ� Initial free charge preview of multimedia multicast content
JP2002135334A (en) 2000-10-27 2002-05-10 Nobuko Hirano Proxy transmission/reception method, and its system
JP2002207919A (en) 2001-01-10 2002-07-26 Mitsubishi Electric Corp System and method for advertisement management
US7499888B1 (en) * 2001-03-16 2009-03-03 Fusionone, Inc. Transaction authentication system and method
ATE349862T1 (en) 2002-11-20 2007-01-15 Cit Alcatel ACCESS SERVER FOR WEB SERVICES
US7310307B1 (en) * 2002-12-17 2007-12-18 Cisco Technology, Inc. System and method for authenticating an element in a network environment
JP4148461B2 (en) * 2003-01-15 2008-09-10 日本電信電話株式会社 Anonymous service providing method and server device and program for realizing the method
WO2004073256A1 (en) * 2003-02-12 2004-08-26 Samsung Electronics Co., Ltd. Method for managing service context for paging user equipment in a multimedia broadcast/multicast service

Also Published As

Publication number Publication date
US7844267B2 (en) 2010-11-30
EP1811716A1 (en) 2007-07-25
JPWO2006038658A1 (en) 2008-05-15
ES2392643T3 (en) 2012-12-12
EP1811716A4 (en) 2009-12-16
EP1811716B1 (en) 2012-08-22
TW200622677A (en) 2006-07-01
JP4486648B2 (en) 2010-06-23
NZ554363A (en) 2009-11-27
WO2006038658A1 (en) 2006-04-13
AU2005290501B2 (en) 2009-04-09
CN101023432A (en) 2007-08-22
AU2005290501A1 (en) 2006-04-13
US20080287128A1 (en) 2008-11-20

Similar Documents

Publication Publication Date Title
KR102321781B1 (en) Processing electronic tokens
US8165635B2 (en) Methods, systems, and computer readable media for over the air (OTA) provisioning of soft cards on devices with wireless communications capabilities
US20050101307A1 (en) Method for performing a voting by mobile terminals
CA2222480C (en) System and method for providing anonymous personalized browsing in a network
AU2004304269B2 (en) Method and apparatus for personalization and identity management
US8002178B2 (en) Virtual membership card system and providing method, and virtual membership card reading method
KR101276201B1 (en) Identity management server, system and method using the same
US6963740B1 (en) Secure enterprise communication system utilizing enterprise-specific security/trust token-enabled wireless communication devices
US20120254030A1 (en) Methods, systems and computer readable media for over the air (ota) provisioning of soft cards on devices with wireless communications capabilities
CN101291217A (en) Network identity authentication method
CN101159940A (en) Method of compartmentalized provision of an electronic service
CN108718323A (en) A kind of identity identifying method and system
CN100499531C (en) Method for access control of contents and system
CN100468435C (en) Server
WO2013163185A1 (en) Methods, systems and computer readable media for over the air(ota) provisioning of soft cards on devices with wireless communications capabilities
US8504829B2 (en) Certification system in network and method thereof
US20100287180A1 (en) Apparatus and Method for Issuing Certificate with User&#39;s Consent
CN100517162C (en) Method and apparatus for personalization and identity management
JP2004318442A (en) Authentication support method and its system
CN100543715C (en) Optimally adapting multimedia content is used for mobile subscriber device playback
CN111984946A (en) User identification method, device, equipment and storage medium
JP2015515700A (en) Method and computer communication system for authenticating a client system
JP2006109267A (en) Server and information acknowledgment method
KR20040041148A (en) Method for the process of certification using mobile communication devices with the function of wireless certification(digital signature)

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20090311

Termination date: 20191005

CF01 Termination of patent right due to non-payment of annual fee